b'                 U.S. G O V E R N M E N T\n                 PRINTING OFFICE\n                 KEEPING AMERICA INFORMED\n\n\n\n\nASSESSMENT\n              FEDERAL DIGITAL SYSTEM (FDSYS)\nREPORT        INDEPENDENT VERIFICATION AND\n09-05        VALIDATION (IV&V) - RELEASE RlC.2\n             PRE-DEPLOYMENT STATUS REPORT\n                       December 24,2008\n\n\n\n\n        OFFICE OF INSPECTOR GENERAL\n\x0c                          U.S. GOVERNMENT\n                          KEEPING AMERICA INFORMED                OFFICE OF THE INSPECTOR GENERAL\n                          WASHINGTON, DC 20401\n\n\n\n\n    DATE:      December 24,2008\n\nREPLY TO\n ATTN OF: Assistant Inspector General for Audits and Inspections\n\n SUBJECT: Federal Digital System (FDsys) Independent Verification and\n          Validation (IV&V) - Release R1C.2 Pre-Deployment Status Report\n          Report Number 09-05\n\n      TO:      Chief Information Officer\n\n\n      The GPO Office of Inspector General (OIG) is conducting independent verification and\n      validation (IV&V) of GPO\'s Federal Digital System (FDS~S)\'      implementation. The OIG\n      contracted with American systems2to conduct IV&V for the public release of FDsys\n      Release l ~ As. part~ of its contract with the OIG, American Systems is assessing the\n      state of program management, technical, and testing plans and other efforts related to the\n      rollout of Release 1C. One tasking is to evaluate risks prior to the deployment of the first\n      public release of FDsys (Release R1C.2). The FDsys Program Office plans to deploy\n      Release R1C.2 in early January 2009.\n\n      The attached report prepared by American Systems provides their view of key risks to\n      program activities that may adversely impact deployment of Release RlC.2. The\n      contents of this report were briefed to the Chief Information Officer on December 18,\n      2009. Section 4 of the report contains two recommendations designed to address the\n      most significant pre-deployment risks. These recommendations are provided for\n      management\'s information only. No response is required as these issues have been\n      addressed in previous IV&V reports. However, we urge management to ensure that they\n      are appropriately addressed prior to deployment.\n\n\n        The FDsys program is a multimillion dollar effort that GPO is funding and managing to modernize the\n      GPO information collection, processing, and dissemination capabilities it performs for the three branches of\n      the Federal Government.\n      2\n        American Systems, located in Chantilly, Virginia, is a large information technology company with\n      significant experience in the realm of IV&V for Federal civilian and Defense agencies, including the\n      Department of State, the Navy, and the U.S. Agency for International Development.\n        American Systems IVBV methodology is referenced to the ftamework established by the Institute of\n      Electrical and Electronic Engineers (IEEE) Standard 1012-2004,the IEEE Standard for Software\n      Verification and Validation.\n\x0cIf you have questions concerning this report or the IV&V process, please contact\nMr. Brent Melson, Deputy Assistant Inspector General for Audits and Inspections at\n(202) 512-2037, or me at (202) 512-2009.\n\n\n\n\nKevin J. Carson\nAssistant Inspector General for Audits and Inspections\n\nAttachment\n\ncc:\nChief of Staff\nChef Acquisition Officer\nChief Management Officer\nChief Technology Officer\n\x0c                                                                          ATTACHMENT\n\n\n                   IV&V QUICK LOOK REPORT\nTO:             Brent Melson, COTR\nFROM:           IV&V, Jon Valett\nIV&V OF:        FDsys Program Development (Final - Doc Number 01-05 1)\nSUBJECT:        State of the FDsys Program Activities to be Completed Prior to Deployment\nDATE:           December 19,2008\nCC:             Dan Rose, David Harold, John Best, Shawn 07Rourke\n\n\n1. Description of Task\n\nIndependent Verification and Validation (N&V) reviewed the state of program activities\nthat have been identified by the Federal Digital System (FDsys) Program Management\nOffice (PMO) as being required to deploy FDsys in early January 2009. This report\nprovides IV&VYsdelineation of the current issues/problems associated with these\nactivities and a brief abstract describing their impact/consequences on the program.\nAssociated program risks and recommendations are also provided.\n\nIV&V examined the key activities of the FDsys program including code development,\ntesting, requirements, training, and security. For each activity, the IV&V team identified\nissues that may jeopardize the integrity of the system to be deployed. IV&V then\nconducted internal meetings to better flesh out each issue and to determine the\nimpact/consequence to the deployment of FDsys. This report is not an attempt to\nsummarize the overall state of the program. Its intent is to identify risks to key program\nactivities that may impact deployment of Release R1C.2 (RlC2) and may impact the\ndevelopment of Release RlC.3 (RlC3). In doing so, risks from previous IV&V reports\nmay be repeated in an attempt to identify the truly critical risks facing the program right\nnow.\n\nNote that the list of activities/issues/consequencesis based on the material IV&V has\nacquired from bi-weekly Risk Review Board meetings; weekly Configuration Control\nBoard meetings; meetings with the FDsys Program Director; and information accessible\nin Caliber, ClearQuest, and Sharepoint.\n\n\n\nWhile progress is being made on the FDsys program, there are still a number of key\nactivities that remain to be completed as the FDsys program deployment date nears. Not\ncompleting the activities have consequences that manifest themselves as risks to\ndeployment and/or deployment of a system with less than optimal functionality;\npotentially discouraging use of FDsys by the GPO community of users. Note also that\nthese activities are often inter-related and dependent upon successful completion of a\npredecessor activity, e.g., conduct of User Acceptance Testing (UAT) is dependent upon\nsuccessful completion of the System Integration and Test (SIT) activity.\n\x0cAt this juncture in the program (mid-December 2008), many of the key dates specified in\nthe Integrated Master Schedule (IMS) have been missed and activities that need to be\ncompleted for successful deployment of FDsys are incomplete. These include the items\ndiscussed below:\n\n        System integration and stand-up has taken longer than envisioned. This results in\n       less time for testing and problem correction (if the deployment date is\n       maintained), as well as, the possibility of an unstable system being deployed.\n       Derived Requirements (DRs) are still being generated and requirements are not\n       being adequately traced to software components and test cases. The generation of\n       DRs and subsequent tracing of all requirements should have been completed prior\n       to software development. There is no single report available that aligns the system\n       requirements (RDs), DRs, software components, and Test Cases. This information\n       may be spread across a number of documents, but it does not appear to have been\n       consolidated anywhere. The flow from requirement to derived requirement to\n       component allocation to test case is needed to confirm that each component\n       appropriately addresses and satisfies the requirements from which it arose. The\n       late completion of the DRs, along with the lack of adequate traceability creates\n       substantial risks to testing, system maintenance, and to planning of RlC3.\n       Requirements allocation to different software drops continued until early\n       December. Some requirements have been moved to "post-launch" updates that are\n       not currently scheduled. Deployment of these "post-launch" updates reduces the\n       capabilities of the initial Release. These updates also introduce a risk of lack of\n       acceptance by the user community as the changing functionality may cause user\n       confusion.\n       Testing is behind schedule. SIT for the three Drops for R1C2 has not been\n       completed. Further compounding this issue is the incomplete test cases for Drop\n       3. SIT has also been significantly delayed by the inability of the program to\n       integrate Documenturn and create a stable system. Without sufficient SIT, the\n       program risks deploying an unreliable and incorrect system.\n       User Acceptance Test (UAT) and Beta Testing has only just begun for the public\n       access part of the system. Only limited test cases for UAT have been developed.\n       To-date, there is no evidence that test cases and procedures have been developed\n       for Beta testing. The User Acceptance and Beta Test Plan for R1C2 is incomplete\n       and unapproved. In addition, if UAT or Beta testing identifies any significant\n       operational problems, it is unlikely that there will be sufficient time to fix these\n       problems prior to the current deployment date.\n       Test performance is not being adequately measured. Program Trouble Reports\n       (PTRs) are being generated and tracked; however, no metrics to measure closure\n       are being provided. As testing progresses, metrics, such as find, fix, verify curves,\n       typically are used to monitor test progress. Without such metrics the program\n       risks not knowing when testing will be complete.\n       No Performance Testing has occurred. IV&V has not seen a Performance Test\n       Plan and Performance Test Cases have not been developed. Without sufficient\n       performance testing the program risks deploying a system that will not be\n       responsive to user demand.\n\x0c       Security testing has not occurred. There is no evidence that security test cases\n       have been generated. There probably isn\'t insufficient time to create the necessary\n       Certification and Accreditation package to meet the deployment date. Without\n       sufficient security testing, the program risks deploying a vulnerable system.\n       The delays in development and testing have impacted the development and\n       conduct of FDsys Training. The Training materials are incomplete; and, user\n       training is just beginning. As a result, the user community will may not be\n       properly prepared to utilize FDsys when it is deployed.\n       The databases needed for deployment are not complete and available for both\n       public and internal users. The eight (8) GPO Access Collections targeted for\n       FDsys R1C2 must be migrated and verified prior to deployment.\n       Critical documentation has not been approved and a Production Baseline has not\n       been established. The detailed design documentation does not reflect the "as-\n       built" design and code, i.e., the Software Design Document (SDD) has not been\n       updated for months. This creates a risk to maintenance and to the planning of\n       RlC3, because without up-to-date documentation, maintenance will rely on the\n       knowledge of the development team and the design of R1C3 will not start from\n       the "as-built" baseline.\n\n3. Identification and Assessment of Technical and Management Risks\n\nThe two most significant risks are as follows:\n      Inadequate testing of FDsys increases the risk that the deployed system will\n       function improperly and/or contain poor operational characteristics. This will\n      jeopardize the acceptance and use of the system by the community of users that\n      FDsys is supposed to serve.\n      Inadequate tracing of requirements to system components and test cases, and lack\n      of complete documentation of the system design creates a risk that system\n      maintenance will be more difficult and costly, and that development of R1C3 will\n      be more difficult and costly.\n\n4. Recommendations\n\nIV&V recommends:\n      That the FDsys program ensure that the system is completely tested for\n      hctionality, performance, and security prior to deployment; and,\n      That requirements traceability and documentation updates be completed prior to\n     beginning design of R1C3.\n\x0c'